Targeting Technology
|
|
- Anne Wilkerson
- 8 years ago
- Views:
Transcription
1 For Official Use Only Targeting Technology Federal Bureau of Investigation Unit Chief Mark A. Levett February 25, 2010 Corporate Espioage & Global Security: Protecting Your Business Interests Rosemont, IL
2 COUNTERINTELLIGENCE THREATS ISSUE THREATS Espionage (National Defense Information) Proliferation (Weapons of Mass Destruction) Economic Espionage National Information Infrastructure Targeting Infiltrating the U.S. Government Perception Management Foreign Intelligence Activities
3 FOREIGN INTEL POLITICAL/MILITARY//ECON FBI on the field of INTELLIGENCE Offense/Score Defense/Protect FSB MPS IRGC AQ HAMAS CNAs CNAs FBI Intercept/ Source = FI FBI FBI FBI FBI FBI FBI Targets Targets CIA FIS People People SVR/GRU DIA Cyber Cyber MSS/PLA NSA Places Places Surrogates Things Things FBI (DA, Source) Foreign Intelligence Counterintelligence DOMESTIC INTEL NATIONAL SECURITY
4 The Evolving Intelligence Threat From: Symmetric (Traditional) - Foreign officials: A, G, I and NATO visas - Known/Suspected Intelligence Officers - Establishment (I.e., Embassies, Consulates and Media organizations) Increasingly To: Asymmetric (Non-traditional) Other non-official foreign nationals -Including students, researchers, business travelers, etc., -Foreign employees -Typically B, F H1B, J and L visas. Threat = Presence + Cyber
5 Who s Who (U) Criteria Intent + Capability + Opportunity = Threat Asia Eurasia Middle East Europe? France Creates Office for Economic Intel Defense News 21 September 2009 S Quote: Some 108+ countries a mix of rich and poor, high- and low-tech, friend and foe targeted US technologies in 2008 totaling $ multi-billions in losses to the Nation s economic and Security sectors 2008 Annual Report to Congress, Prepared by the National Counterintelligence Executive (NCIX) It is not espionage but consists of using all legal means to gain an understanding of the competitive environmnet.
6 *A Variety of Methods Exploiting Existing Relationships with US Entities- 6% Exploiting Foreign Visits to the US- 7% Internet Activity- 6% Targeting Conventions- 4% Unsolicited Requests for Information- 29% Targeting US Experts Abroad- 8% Solicitation of Marketing Services- 10% Illegal Methods- 4% Direct Attempts To Purchase US Technology- 26% * Estimates compiled from data provided by the U.S. Intelligence Community: 2007
7 Collection Techniques Request for Information E mail, FAX, Telephone Unsolicited Attempted Acquisitions Purchase products Purchase US companies Marketing of Foreign Services and Products Favorite of hardware/software firms Insert personnel or products
8 Foreign Collectors Governments Advanced Countries Leapfrog scientific hurdle w/o time and expense Move closer in parity with United States Give Defense Industrial base competitive edge Less Advanced Countries Technologies that increase nations power and influence Export controlled utilize reverse engineering and mass produce
9 Trade Secrets Foreign economic collection targeting trade secrets through espionage. Trade Secrets financial, business, scientific, technical, economic, or engineering information Company must take reasonable measures to keep secret and not be readily ascertainable through proper means by the public.
10 Targeted Technologies Efforts not always directed against the Crown Jewels Dated technologies Infrastructure supportive supportive technologies Dual use use technologies
11 Activities to improperly acquire Trade Secrets Economic Espionage Benefit a foreign govt or agent of Stealing, copying, altering destroying, without authorization Industrial Espionage criminalized under EEA Export Control Violations dual use equip/tech Concurrent with ICE, DOC EE Transfer of Defense items US munitions list ITAR USDS/DDTC
12 Business Alliances Changing Behaviors FBI-led programmatic outreach to Industry The Defense Industrial Base for starters Executive level engagement/fsos RISK = Threat x Vulnerability x Consequence Outreach, engagement, dialogue CI and Business confidence-building Threat information exchange Joint mitigation solutions Due-diligence /Self-governance through Awareness Corporate Volunteerism Reporting protocols CI
13 Business Alliance Activities Continuous consultation Identify/localize Critical Research/Program Information = CNA Tailored risk & threat Assessments CI awareness/education Foreign travel briefing and debriefing Foreign visitor and escort Unsolicited requests for data Cyber security Countermeasures & Risk Mitigation Referrals Reporting Monitoring Detection Analysis *CI investigative and operational lead development & follow through 15
14 Insider Threat
15 Insider Threat A person with authorized access to information, facilities, technology or personnel who Utilizes his/her access with intention of providing information, technology or access to unauthorized persons and/or Maliciously manipulates or causes damage or harm to an organization, its information, facilities, technology or persons
16 Insider Threat: Potential Indicators Foreign Nexus Insider Nexus Relationship with foreign visitors whether personal, professional, or social Freq. travel overseas to attend conferences, (who paid for trip, who invited the participants) Has relatives in a foreign country Express sympathies to another country Notable enthusiasm for overtime work, weekend work, or unusual schedules Interest in matters outside scope of employment (particularly those of interest to foreign entities) Express dissatisfaction with current work environment or ineffective job performance
17 Insider Threat: Potential Indicators Personal Issues The fact that an individual exhibits one or more of these indicators does not automatically mean that he or she is engaged in espionage. Drug or alcohol abuse Repeated irresponsibility An above the rules attitude Financial irresponsibility Overwhelming life crises or career disappointments Unexplained affluence Unexplained absences Pattern of lying Inappropriate behavior Misuse of computers Etc.
18 Insider Threat: Best Practices Be aware of potential issues and exercise good judgment in determining what and when to report them. Post signs notifying employees of security regulations. Use computer banners that employees must click to acknowledge computer security issues. Have employees sign non disclosure and other security agreements. Have yearly security and ethics training. Maintain computer/information access logs.
19 Cyber Threat
20 Emerging Security Concerns Building risk related security mitigation into business processes Understanding over the horizon threats Growing regulatory and standards requirements Increased virtualization of companies Identifying all external stakeholders
21 Cyber Threat Humans are the weakest link! Don t t put it on the network Created isolated networks Control physical access Think before ing Trust but verify Acceptable Risk?
22 Traveling Overseas Leave your bits & bytes at home. Realize there are no trusted networks in many countries. Gifts may not be what they appear. Look for anomalies. Clean laptop program. Scrub IT and media upon return/prior to introduction into the home network.
23 Cyber Security IT needs to be integrated into and coordinated with a larger security program. IT security personnel must be Counterintelligence aware Traditional security personnel must be IT aware Cultural divide between traditional and IT security personnel must be bridged
24 Bottom line It s all about relationships Maintain U.S./Allied dual-use and leadingedge military technology superiority Optimize capital investments in U.S. industry Prevent compromise of Critical Research and Technologies Ensure technological advantage to the U.S./Allied warfighter and avoid technology surprise in the battlespace Ensure U.S. economic competitiveness
25 Final Thoughts Business leaders should understand that the FBI is focused on helping protect US companies, employees and shareholders. A robust relationship formed prior to the break of an espionage case will is a valuable asset in establishing the trust necessary for successful case conclusion. Essential to identify key personnel/stakeholders in the private sector and USG as soon as possible (CI Strategic Partnership Coordinators are valuable assets for this purpose).
26 Community Outreach We must work here in the United States with the citizens we serve, to identify and disrupt those who would do us harm The simple truth is that we cannot do our jobs without the trust of the American people. And we cannot build that trust without reaching out to say, We in the Bureau are on your side. We stand ready to help. FBI Director Robert S. Mueller, III at the Council on Foreign Relations 23 Feb /
COUNTERINTELLIGENCE VULNERABILITY ASSESSMENT FOR CORPORATE AMERICA
COUNTERINTELLIGENCE VULNERABILITY ASSESSMENT FOR CORPORATE AMERICA 09/1 8/2009 version UNCLASSIFIED//FOR OFFICIAL USE ONLY Cl VULNERABILITY ASSESSMENT FOR CORPORATE AMERICA DEFINING COUNTERINTELLIGENCE
More informationCOUNTERINTELLIGENCE. Protecting Key Assets: A Corporate Counterintelligence Guide
COUNTERINTELLIGENCE O F F I C E O F T H E N A T I O N A L C O U N T E R I N T E L L I G E N C E Protecting Key Assets: A Corporate Counterintelligence Guide E X E C U T I V E Counterintelligence for the
More informationCounterintelligence Awareness Glossary
Counterintelligence Awareness Glossary Access: The ability and opportunity to obtain knowledge of classified information. Anomaly: Activity r knowledge, outside the norm, that suggests a foreign entity
More informationThe Senior Executive s Role in Cybersecurity. By: Andrew Serwin and Ron Plesco.
The Senior Executive s Role in Cybersecurity. By: Andrew Serwin and Ron Plesco. 1 Calling All CEOs Are You Ready to Defend the Battlefield of the 21st Century? It is not the norm for corporations to be
More informationConsultant Annual DoD Security Refresher
Consultant Annual DoD Security Refresher 1 About This Course This course should be taken by Consultants Only in this PDF format All others should take this course online LMPeople > LMCareers > Learning
More informationDefense Security Service
Defense Security Service Defense Security Service Cybersecurity Operations Division Counterintelligence UNCLASSIFIED Defense Security Service DSS Mission DSS Supports national security and the warfighter,
More information2008 DIB CIP CONFERENCE MIAMI, FL April 9, 2008
1 2008 DIB CIP CONFERENCE MIAMI, FL April 9, 2008 INTELLIGENCE AND THREAT WARNING THE THREAT IS CORPORATE AMERICA IT IS ASYMMETRIC WARFARE 2 Annual Report to Congress: Foreign Economic Collection and Industrial
More informationINTELLIGENCE AND ANALYSIS
OFFICE OF INTELLIGENCE AND ANALYSIS U.S. DEPARTMENT OF THE TREASURY WORKING AT OIA OIA S MISSION POSITION DESCRIPTIONS BENEFITS & CONTACT INFORMATION working at oia OIA officers support the formulation
More informationThe FBI Cyber Program. Bauer Advising Symposium //UNCLASSIFIED
The FBI Cyber Program Bauer Advising Symposium October 11, 2012 Today s Agenda What is the threat? Who are the adversaries? How are they attacking you? What can the FBI do to help? What can you do to stop
More informationSTRATEGIC OBJECTIVE 2.4 OVERCOME GLOBAL SECURITY CHALLENGES THROUGH DIPLOMATIC ENGAGEMENT AND DEVELOPMENT COOPERATION
Performance Goal 2.4.1 By September 30, 2017, achieve key milestones to promote arms control and nonproliferation by implementing the President s Prague Agenda of steps toward a world without nuclear weapons;
More informationSharing Cybersecurity Threat Info With the Government -- Should You Be Afraid To Do So?
Sharing Cybersecurity Threat Info With the Government -- Should You Be Afraid To Do So? Bruce Heiman K&L Gates September 10, 2015 Bruce.Heiman@klgates.com (202) 661-3935 Why share information? Prevention
More informationSupply Chain Risk Management. Operating ahead of the threat, not behind the vulnerabilities
Supply Chain Risk Management Operating ahead of the threat, not behind the vulnerabilities Navigation in the Meeting Room Notes box for audio information and other announcements To enlarge the slide, click
More information12 FAM 260 COUNTERINTELLIGENCE
12 FAM 260 COUNTERINTELLIGENCE 12 FAM 261 GENERAL (CT:DS-191; 03-29-2013) (Office of Origin: DS/DO/ICI) 12 FAM 261.1 Program Implementation a. The Department s counterintelligence (CI) program is defensive
More informationDIVISION N CYBERSECURITY ACT OF 2015
H. R. 2029 694 DIVISION N CYBERSECURITY ACT OF 2015 SEC. 1. SHORT TITLE; TABLE OF CONTENTS. (a) SHORT TITLE. This division may be cited as the Cybersecurity Act of 2015. (b) TABLE OF CONTENTS. The table
More informationEXPORT CONTROLS COMPLIANCE
Responsible University Official: Vice President for Research Responsible Office: Office for Export Controls Compliance Origination Date: May 1, 2014 EXPORT CONTROLS COMPLIANCE Policy Statement Northwestern
More informationForeign Collection Methods: Indicators and Countermeasures
DSS Foreign Collection Methods: and IDENTIFY Requests for Information Academic Solicitation Suspicious Network Activity Targeting at Trade Shows Solicitation and Marketing /Seeking Employment Foreign Visits
More informationMiddle Tennessee State University. Office of Research Services
Middle Tennessee State University Office of Research Services Procedure No.: ORS 007: Export Control Date Approved: December 08, 2011 1. INTRODUCTION: It is the intent of Middle Tennessee State University
More informationBureau of Industry and Security
Bureau of Industry and Security The mission of the Bureau of Industry and Security (BIS) is to advance U.S. national security, foreign policy, and economic objectives by ensuring an effective export control
More informationDepartment of Commerce Office of Security. Initial Information Security Briefing
Department of Commerce Office of Security Initial Information Security Briefing Security Clearance A security clearance is a determination of trust, which makes you eligible for access to classified information.
More informationGOOD SECURITY IS A GROUP EFFORT
THE OFFICE OF SECURITY Operations Security (OPSEC) GOOD SECURITY IS A GROUP EFFORT Operations Security (OPSEC) "Even minutiae should have a place in our collection, for things of a seemingly trifling nature,
More information2374-19. Joint ICTP-IAEA School of Nuclear Energy Management. 5-23 November 2012. Nuclear Security Fundamentals Module 9 topic 2
2374-19 Joint ICTP-IAEA School of Nuclear Energy Management 5-23 November 2012 Nuclear Security Fundamentals Module 9 topic 2 EVANS Rhonda, IAEA Department of Nuclear Safety and Security Office of Nuclear
More informationAnnual DoD Security Refresher Training
Annual DoD Security Refresher Training Welcome to your annual security refresher training. The purpose of this briefing is to remind you of your personal responsibilities and liabilities under United States
More informationAN INFORMATION GOVERNANCE BEST
SMALL BUSINESS ID THEFT AND FRAUD AN INFORMATION GOVERNANCE BEST PRACTICES GUIDE FOR SMALL BUSINESS IT IS NOT A MATTER OF IF BUT WHEN AN INTRUSION WILL BE ATTEMPTED ON YOUR BUSINESS COMPUTER SYSTEM IN
More informationEspionage and Intelligence. Debra A. Miller, Book Editor
Espionage and Intelligence Debra A. Miller, Book Editor Intelligence... has always been used by the United States to support U.S. military operations, but much of what forms today s intelligence system
More informationContact Reporting Guidelines The Australian Government Contact Reporting Scheme
Contact Reporting Guidelines The Australian Government Contact Reporting Scheme Version 1.0 Approved September 2010 Contents Introduction... 1 The role of ASIO... 1 Australian Government Contact Reporting
More informationKeynote: FBI Wednesday, February 4 noon 1:10 p.m.
Keynote: FBI Wednesday, February 4 noon 1:10 p.m. Speaker: Leo Taddeo Special Agent in Change, Cyber/Special Operations Division Federal Bureau of Investigation Biography: Leo Taddeo Leo Taddeo is the
More informationCorporate Spying An Overview
Corporate Spying An Overview With the boom in informational and technological advancements in recent years, there comes the good and the bad the bad being more susceptibility to the theft of confidential
More informationLegislative Language
Legislative Language SECTION 1. DEPARTMENT OF HOMELAND SECURITY CYBERSECURITY AUTHORITY. Title II of the Homeland Security Act of 2002 (6 U.S.C. 121 et seq.) is amended (a) in section 201(c) by striking
More informationGAO. INFORMATION SECURITY Persistent Weaknesses Highlight Need for Further Improvement
GAO For Release on Delivery Expected at time 1:00 p.m. EDT Thursday, April 19, 2007 United States Government Accountability Office Testimony Before the Subcommittee on Emerging Threats, Cybersecurity,
More informationCombatting the Biggest Cyber Threats to the Financial Services Industry. A White Paper Presented by: Lockheed Martin Corporation
Combatting the Biggest Cyber Threats to the Financial Services Industry A White Paper Presented by: Lockheed Martin Corporation Combatting the Biggest Cyber Threats to the Financial Services Industry Combatting
More informationwww.pwc.com Developing a robust cyber security governance framework 16 April 2015
www.pwc.com Developing a robust cyber security governance framework 16 April 2015 Cyber attacks are ubiquitous Anonymous hacker group declares cyber war on Hong Kong government, police - SCMP, 2 October
More informationThreats to Fiber- Optic Infrastructures
Threats to Fiber- Optic Infrastructures A Blackhat Federal Briefing 1-2 October, 2003 0 TOC Introduction to Fiber Network Infrastructure Technology Threats Tapping [A Demo] Defending Fiber Infrastructures
More informationWRITTEN TESTIMONY OF
WRITTEN TESTIMONY OF KEVIN MANDIA CHIEF EXECUTIVE OFFICER MANDIANT CORPORATION BEFORE THE SUBCOMMITTEE ON CRIME AND TERRORISM JUDICIARY COMMITTEE UNITED STATES SENATE May 8, 2013 Introduction Thank you
More informationENSURING SECURITY IN AND FACILITATING INTERNATIONAL TRADE. Measures toward enhancing maritime cybersecurity. Submitted by Canada SUMMARY
E FACILITATION COMMITTEE 39th session Agenda item 7 FAL 39/7 10 July 2014 Original: ENGLISH ENSURING SECURITY IN AND FACILITATING INTERNATIONAL TRADE Measures toward enhancing maritime cybersecurity Submitted
More informationTransforming business through technology. Acceptable Use Policy & Data Centre Policies
Acceptable Use Policy & Data Centre Policies September 2015 Princess Gemici Contents PART A: ACCEPTABLE USE POLICY ("AUP")...2 1. POLICIES REGARDING ACCEPTABLE USE...2 2. GENERAL...2 3. RIGHTS OF CORE...2
More information82-10-43 Social Engineering and Reverse Social Engineering Ira S. Winkler Payoff
82-10-43 Social Engineering and Reverse Social Engineering Ira S. Winkler Payoff Social engineering is the term that hackers use to describe attempts to obtain information about computer systems through
More informationThe National Counterintelligence Strategy of the United States
The National Counterintelligence Strategy of the United States Office of the National Counterintelligence Executive March 2005 National Counterintelligence Strategy of the United States PREFACE The Counterintelligence
More informationThreat Awareness and Reporting Program
Army Regulation 381 12 Military Intelligence Threat Awareness and Reporting Program Headquarters Department of the Army Washington, DC 4 October 2010 UNCLASSIFIED SUMMARY of CHANGE AR 381 12 Threat Awareness
More informationGetting real about cyber threats: where are you headed?
Getting real about cyber threats: where are you headed? Energy, utilities and power generation companies that understand today s cyber threats will be in the best position to defeat them June 2011 At a
More informationInsider s Guide to Careers in Intelligence Analysis. hosted by Tom Hunter, MA, M.Litt. (Former DIA Senior Intelligence Analyst)
Insider s Guide to Careers in Intelligence Analysis hosted by Tom Hunter, MA, M.Litt. (Former DIA Senior Intelligence Analyst) December 17, 2009 Overview Presenter s Background Overview of Intelligence
More informationDepartment of Defense INSTRUCTION
Department of Defense INSTRUCTION NUMBER 5200.39 May 28, 2015 USD(I)/USD(AT&L) SUBJECT: Critical Program Information (CPI) Identification and Protection Within Research, Development, Test, and Evaluation
More informationSeoul Communiqué 2012 Seoul Nuclear Security Summit
Seoul Communiqué 2012 Seoul Nuclear Security Summit We, the leaders, gathered in Seoul on March 26-27, 2012, renew the political commitments generated from the 2010 Washington Nuclear Security Summit to
More informationwww.lgrmg.ca Setting the Standard in Risk Management Consulting and Investigation Services
www.lgrmg.ca Setting the Standard in Risk Management Consulting and Investigation Services Setting the Standard in Risk Management Consulting and Investigation Services AN INTRODUCTION Lions Gate Risk
More informationThe Comprehensive National Cybersecurity Initiative
The Comprehensive National Cybersecurity Initiative President Obama has identified cybersecurity as one of the most serious economic and national security challenges we face as a nation, but one that we
More informationComparison of Information Sharing, Monitoring and Countermeasures Provisions in the Cybersecurity Bills
April 4, 2012 Comparison of Information Sharing, Monitoring and Countermeasures Provisions in the Cybersecurity Bills The chart below compares on civil liberties grounds four bills that seek to promote
More informationRSA. Frequently Asked Questions. RSA Data Security, Inc. About Cryptography Export Laws. Answers to THE KEYS TO PRIVACY AND AUTHENTICATION
RSA Data Security, Inc. Answers to Frequently Asked Questions About Cryptography Export Laws RSA DATA SECURITY, INC. THE KEYS TO PRIVACY AND AUTHENTICATION Copyright Notice Copyright 1996 by RSA Data Security,
More informationSeptember 20, 2013 Senior IT Examiner Gene Lilienthal
Cyber Crime September 20, 2013 Senior IT Examiner Gene Lilienthal The following presentation are views and opinions of the speaker and does not necessarily reflect the views of the Federal Reserve Bank
More informationGLOBAL BUSINESS DIALOGUE ON ELECTRONIC COMMERCE CYBER SECURITY AND CYBER CRIME SEPTEMBER 26, 2000. CEO EDS Corporation
GLOBAL BUSINESS DIALOGUE ON ELECTRONIC COMMERCE CYBER SECURITY AND CYBER CRIME SEPTEMBER 26, 2000 Issue Chair: Issue Sherpa: Dick Brown CEO EDS Corporation Bill Poulos EDS Corporation Tel: (202) 637-6708
More informationDepartment of Defense DIRECTIVE
Department of Defense DIRECTIVE NUMBER 5205.16 September 30, 2014 USD(I) SUBJECT: The DoD Insider Threat Program References: See Enclosure 1 1. PURPOSE. In accordance with sections 113 and 131 through
More informationLegislative Language
Legislative Language SEC. 1. COORDINATION OF FEDERAL INFORMATION SECURITY POLICY. (a) IN GENERAL. Chapter 35 of title 44, United States Code, is amended by striking subchapters II and III and inserting
More informationOne Hundred Twelfth Congress of the United States of America
S. 3454 One Hundred Twelfth Congress of the United States of America AT THE SECOND SESSION Begun and held at the City of Washington on Tuesday, the third day of January, two thousand and twelve An Act
More informationquality customer satisfaction leadership integrity people supplier quality customer satisfaction leadership leadership integrity people
quality customer satisfaction quality customer satisfaction quality customer satisfaction quality customer satisfaction quality customer quality customer Northrop Grumman is committed to act with INTEGRITY
More informationWho Drives Cybersecurity in Your Business? Milan Patel, K2 Intelligence. AIBA Quarterly Meeting September 10, 2015
Who Drives Cybersecurity in Your Business? Milan Patel, K2 Intelligence AIBA Quarterly Meeting September 10, 2015 The Answer 2 Everyone The relationship between the board, C-suite, IT, and compliance leaders
More informationPublic Opinion on Selected National Security Issues: 1994-2000
Management Report 01-4 October 2001 Public Opinion on Selected National Security Issues: 1994-2000 Suzanne Wood Defense Personnel Security Research Center Released by James A. Riedel Director Defense Personnel
More informationFederal Bureau of Investigation s Integrity and Compliance Program
Evaluation and Inspection Division Federal Bureau of Investigation s Integrity and Compliance Program November 2011 I-2012-001 EXECUTIVE DIGEST In June 2007, the Federal Bureau of Investigation (FBI) established
More informationTo improve cybersecurity in the United States through enhanced sharing of information about cybersecurity threats, and for other purposes.
BAG15121 Discussion Draft S.L.C. 114TH CONGRESS 1ST SESSION S. XXXX To improve cybersecurity in the United States through enhanced sharing of information about cybersecurity threats, and for other purposes.
More informationOhio Supercomputer Center
Ohio Supercomputer Center Intrusion Prevention and Detection No: Effective: OSC-12 5/21/09 Issued By: Kevin Wohlever Director of Supercomputer Operations Published By: Ohio Supercomputer Center Original
More informationJames R. Clapper. Director of National Intelligence
Statement for the Record Worldwide Cyber Threats House Permanent Select Committee on Intelligence James R. Clapper Director of National Intelligence September 10, 2015 STATEMENT FOR THE RECORD Worldwide
More informationRICH TOWNSHIP HIGH SCHOOL Adopted: 7/10/00 DISTRICT 227 Olympia Fields, Illinois
6.55 Page 1 of 1 INSTRUCTION Acceptable Use Policy Computer equipment, including access to the Internet, is to be used in a responsible, efficient, ethical and legal manner in accordance with the mission
More informationExport Controls. How to Comply with Export Controls. By Kimberly Marshall
Export Controls How to Comply with Export Controls By Kimberly Marshall Purpose of Regulation Technological superiority is a significant element in the defense of the United States, along with research,
More informationUr-Energy Inc. Code of Business Conduct and Ethics
Ur-Energy Inc. Code of Business Conduct and Ethics As Amended Effective February 5, 2014 2957409.2 TABLE OF CONTENTS INTRODUCTION... 3 CONFLICTS OF INTEREST... 3 GIFTS, INVITATIONS AND ENTERTAINMENT GUIDELINES...
More information$194 per record lost* 3/15/2013. Global Economic Crime Survey. Data Breach Costs. David Childers, CEO Compli Vivek Krishnamurthy, Foley Hoag LLP
David Childers, CEO Compli Vivek Krishnamurthy, Foley Hoag LLP Global Economic Crime Survey Global Cyber Crime is the fastest growing economic crime Cyber Crime is more lucrative than trafficking drugs!
More informationISACA Kampala Chapter Feb 2011. Bernard Wanyama Syntech Associates Limited
ISACA Kampala Chapter Feb 2011 Bernard Wanyama Syntech Associates Limited Agenda 1. ERP: What is it? 2. ERP: Examples 3. Security: Definitions, Triads & Frameworks 4. Security: Control Framework 5. Traditional
More informationSTATEMENT OF JOSEPH DEMAREST ASSISTANT DIRECTOR CYBER DIVISION FEDERAL BUREAU OF INVESTIGATION BEFORE THE
STATEMENT OF JOSEPH DEMAREST ASSISTANT DIRECTOR CYBER DIVISION FEDERAL BUREAU OF INVESTIGATION BEFORE THE HOMELAND SECURITY COMMITTEE SUBCOMMITTEE ON COUNTERTERRORISM AND INTELLIGENCE AND SUBCOMITTEE ON
More informationInteragency Review of Foreign National Access to Export-Controlled Technology in the United States. Executive Summary
Offices of Inspector General of the Departments of Commerce, Defense, Energy, Homeland Security, and State and the Central Intelligence Agency Report No. D-2004-062 April 16, 2004 Interagency Review of
More informationCYBER SECURITY AND CYBER DEFENCE IN THE EUROPEAN UNION OPPORTUNITIES, SYNERGIES AND CHALLENGES
CYBER SECURITY AND CYBER DEFENCE IN THE EUROPEAN UNION OPPORTUNITIES, SYNERGIES AND CHALLENGES By Wolfgang Röhrig, Programme Manager Cyber Defence at EDA and Wg Cdr Rob Smeaton, Cyber Defence Staff Officer
More informationThe National Counterintelligence Strategy of the United States of America (2007) was drafted in coordination with the National Counterintelligence
The National Counterintelligence Strategy of the United States of America (2007) was drafted in coordination with the National Counterintelligence Policy Board. Chaired by the National Counterintelligence
More informationThreats and Attacks. Modifications by Prof. Dong Xuan and Adam C. Champion. Principles of Information Security, 5th Edition 1
Threats and Attacks Modifications by Prof. Dong Xuan and Adam C. Champion Principles of Information Security, 5th Edition 1 Learning Objectives Upon completion of this material, you should be able to:
More informationTen Questions Your Board Should be asking about Cyber Security. Eric M. Wright, Shareholder
Ten Questions Your Board Should be asking about Cyber Security Eric M. Wright, Shareholder Eric Wright, CPA, CITP Started my career with Schneider Downs in 1983. Responsible for all IT audit and system
More informationFederal Bureau of Investigation. Los Angeles Field Office Computer Crime Squad
Federal Bureau of Investigation Los Angeles Field Office Computer Crime Squad Overview FBI and Infrastructure Protection Cyber Crime Cases Cyber Law What to do Infrastructure Protection: Traditional Threat
More informationU. S. Attorney Office Northern District of Texas March 2013
U. S. Attorney Office Northern District of Texas March 2013 What Is Cybercrime? Hacking DDOS attacks Domain name hijacking Malware Other computer related offenses, i.e. computer and internet used to facilitate
More informationCyber Threats: Exposures and Breach Costs
Issue No. 2 THREAT LANDSCAPE Technological developments do not only enhance capabilities for legitimate business they are also tools that may be utilized by those with malicious intent. Cyber-criminals
More informationCOMPUTER AND NETWORK USAGE POLICY
COMPUTER AND NETWORK USAGE POLICY Respect for intellectual labor and creativity is vital to academic discourse and enterprise. This principle applies to works of all authors and publishers in all media.
More informationwww.pwc.fi We believe successful global organisations can confront fraud, corruption and abuse PwC Finland Forensic Services
www.pwc.fi We believe successful global organisations can confront fraud, corruption and abuse Finland Who are we? Bring a robust forensics team to the table to support your organisation Our practice can
More informationDIVISION N CYBERSECURITY ACT OF 2015
U:\0REPT\OMNI\FinalOmni\CPRT--HPRT-RU00-SAHR0-AMNT.xml DIVISION N CYBERSECURITY ACT OF 0 SEC.. SHORT TITLE; TABLE OF CONTENTS. (a) SHORT TITLE. This division may be cited as the Cybersecurity Act of 0.
More informationCODE OF BUSINESS CONDUCT AND ETHICS
CODE OF BUSINESS CONDUCT AND ETHICS Introduction This (the Code ) applies to Oceaneering International, Inc. and its subsidiaries and other affiliated companies (together referred to as our Company, us
More informationPierce County Policy on Computer Use and Information Systems
Pierce County Policy on Computer Use and Information Systems Pierce County provides a variety of information technology resources such as computers, software, printers, scanners, copiers, electronic mail
More informationRUAG Cyber Security. More security for your data
RUAG Cyber Security More security for your data More security in cyberspace The RUAG Cyber Security Portfolio offers greater protection for your data through inspection, event analysis and decision-making
More informationYour Personal Information: Protecting it from Exploitation
Your Personal Information: Protecting it from Exploitation Data breaches involving personal information result in a broad range of risks to individuals and organizations. This includes identity theft,
More informationHarmful Interference into Satellite Telecommunications by Cyber Attack
Kobe and QM Symposium on International Law "Diversity of Transnational Criminal Justice" Harmful Interference into Satellite Telecommunications by Cyber Attack 10 April 2015 Yuri Takaya Research Fellow/Lecturer,
More informationAVE MARIA UNIVERSITY HIPAA PRIVACY NOTICE
AVE MARIA UNIVERSITY HIPAA PRIVACY NOTICE This Notice of Privacy Practices describes the legal obligations of Ave Maria University, Inc. (the plan ) and your legal rights regarding your protected health
More informationInto the cybersecurity breach
Into the cybersecurity breach Tim Sanouvong State Sector Cyber Risk Services Deloitte & Touche LLP April 3, 2015 Agenda Setting the stage Cyber risks in state governments Cyber attack vectors Preparing
More information(U) Appendix D: Evaluation of the Comprehensive National Cybersecurity Initiative
(U) Appendix D: Evaluation of the Comprehensive National Cybersecurity Initiative (U) Presidential Directive NSPD 54/HSPD 23, Cybersecurity Policy, established United States policy, strategy, guidelines,
More information資 通 安 全 產 品 研 發 與 驗 證 (I) ICT Security Overview. Prof.. Albert B. Jeng ( 鄭 博 仁 教 授 ) 景 文 科 技 大 學 資 訊 工 程 系
資 通 安 全 產 品 研 發 與 驗 證 (I) ICT Security Overview Prof.. Albert B. Jeng ( 鄭 博 仁 教 授 ) 景 文 科 技 大 學 資 訊 工 程 系 Outline Infosec, COMPUSEC, COMSEC, and Network Security Why do we need Infosec and COMSEC? Security
More informationBroadband Acceptable Use Policy
Broadband Acceptable Use Policy Contents General... 3 Your Responsibilities... 3 Use of Email with particular regards to SPAM... 4 Bulk Email... 5 Denial of Service... 5 Administration of Policy... 6 2
More informationPolicy and Procedures Date: 08-24-11
Virginia Polytechnic Institute and State University Policy and Procedures Date: 08-24-11 Subject: Export and Sanctions Compliance Policy Definitions 1.0 Policy 2.0 Oversight 3.0 Responsibilities of Faculty,
More informationBOARD OF GOVERNORS MEETING JUNE 25, 2014
CYBER RISK UPDATE BOARD OF GOVERNORS MEETING JUNE 25, 2014 EXECUTIVE SUMMARY Cyber risk has become a major threat to organizations around the world, as highlighted in several well-publicized data breaches
More informationDepartment of Defense INSTRUCTION
Department of Defense INSTRUCTION NUMBER 5200.44 November 5, 2012 DoD CIO/USD(AT&L) SUBJECT: Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN) References: See Enclosure
More informationHow To Use A College Computer System Safely
1.0 Overview Keuka College provides access to modern information technology in support of its mission to promote excellence and achievement across its mission areas of instruction, research, and service.
More informationYour Agency Just Had a Privacy Breach Now What?
1 Your Agency Just Had a Privacy Breach Now What? Kathleen Claffie U.S. Customs and Border Protection What is a Breach The loss of control, compromise, unauthorized disclosure, unauthorized acquisition,
More informationGAO CRITICAL INFRASTRUCTURE PROTECTION. Significant Challenges in Developing Analysis, Warning, and Response Capabilities.
GAO United States General Accounting Office Testimony Before the Subcommittee on Technology, Terrorism and Government Information, Committee on the Judiciary, U.S. Senate For Release on Delivery Expected
More informationImplementing Program Protection and Cybersecurity
Implementing Program Protection and Cybersecurity Melinda Reed Office of the Deputy Assistant Secretary of Defense for Systems Engineering Mark Godino Office of the Deputy Assistant Secretary of Defense
More informationCLOSING THE DOOR TO CYBER ATTACKS HOW ENTERPRISES CAN IMPLEMENT COMPREHENSIVE INFORMATION SECURITY
CLOSING THE DOOR TO CYBER ATTACKS HOW ENTERPRISES CAN IMPLEMENT COMPREHENSIVE INFORMATION SECURITY CLOSING THE DOOR TO CYBER ATTACKS Cybersecurity and information security have become key challenges for
More informationTestimony of. Before the United States House of Representatives Committee on Oversight and Government Reform And the Committee on Homeland Security
Testimony of Dr. Phyllis Schneck Deputy Under Secretary for Cybersecurity and Communications National Protection and Programs Directorate United States Department of Homeland Security Before the United
More informationSystem Security Engineering and Comprehensive Program Protection
System Security Engineering and Comprehensive Program Protection Melinda Reed Office of the Deputy Assistant Secretary of Defense for Systems Engineering 16th Annual NDIA Systems Engineering Conference
More informationPanel Title: Data Breaches: Industry and Law Enforcement Perspectives on Best Practices
Panel Title: Data Breaches: Industry and Law Enforcement Perspectives on Best Practices Over the course of this one hour presentation, panelists will cover the following subject areas, providing answers
More informationMiddle Class Economics: Cybersecurity Updated August 7, 2015
Middle Class Economics: Cybersecurity Updated August 7, 2015 The President's 2016 Budget is designed to bring middle class economics into the 21st Century. This Budget shows what we can do if we invest
More informationNEW ZEALAND S CYBER SECURITY STRATEGY
Appendix 1 NEW ZEALAND S CYBER SECURITY STRATEGY June 2011 New Zealand Government 7 June 2011 ISBN: 978-0-478-38200-6 www.med.govt.nz/cyberstrategy MED11 Foreword from the Minister The Internet and digital
More informationAPPROPRIATE USE OF INFORMATION POLICY 3511 TECHNOLOGY RESOURCES ADOPTED: 06/17/08 PAGE 1 of 5
PAGE 1 of 5 PURPOSE Triton College s computer and information network is a continually growing and changing resource supporting thousands of users and systems. These resources are vital for the fulfillment
More informationAn Overview of Large US Military Cybersecurity Organizations
An Overview of Large US Military Cybersecurity Organizations Colonel Bruce D. Caulkins, Ph.D. Chief, Cyber Strategy, Plans, Policy, and Exercises Division United States Pacific Command 2 Agenda United
More information